Hey, I hope that this is a good forum for this question, if not please feel
free to tell me where to go ;)
I have recently inherited an existing openldap infrastructure. The LDAP tree
also stores Kerberos tickets and principals.
the environment is configured with a 'master' ldap server and a bunch of
'consumer' nodes all pointing to it for syncrepl.
The syncrepl looks like that
olcSyncrepl: {0}rid=312 provider="ldaps://<ldap master>:636/"
type=refreshAndPersist
interval="00:00:01:00" retry="60 30 300 +" searchbase="<base dn>" bi
ndmethod=sasl
saslmech=gssapi keepalive=3540:10:3
This master server needs to be decommissioned.
So I have chosen one of the consumers in the environment to be the new master.
And pointed all of the other consumers to use its IP in the provider field.
Syncreplication appears to be working as expected. However the new master
still has the original in its provider field.
Is the process of promoting this new node to 'master' as simple as stopping
slapd, removing the olcSyncRepl line from the hdb.ldif file and restarting
slapd?
Or is this more to it, I am assuming more to it, but I can't seem to verify
that suspicion.
Thanks
--
JT
Experience is what you get when you didn't get what you wanted.
